Move {Brig,Galley]APIAccess effects from spar to wire-subsystems.

Author: fisx

libs/wire-subsystems/default.nix

@@ -27,6 +27,7 @@
 , constraints
 , containers
 , contravariant
+, cookie
 , cql
 , crypton
 , crypton-x509
@@ -163,6 +164,7 @@ mkDerivation {
     constraints
     containers
     contravariant
+    cookie
     cql
     crypton
     crypton-x509
@@ -285,6 +287,7 @@ mkDerivation {
     constraints
     containers
     contravariant
+    cookie
     cql
     crypton
     crypton-x509

libs/wire-subsystems/src/Wire/BrigAPIAccess.hs

@@ -71,6 +71,29 @@ module Wire.BrigAPIAccess
     deleteGroupInternal,
     deleteApp,
     DeleteGroupManagedError (..),
+
+    -- * SAML / SCIM user management
+    createSAML,
+    createNoSAML,
+    updateEmail,
+    getAccount,
+    getAccountByHandle,
+    getByEmail,
+    setName,
+    setHandle,
+    setManagedBy,
+    setSSOId,
+    setRichInfo,
+    setLocale,
+    getRichInfo,
+    checkHandleAvailable,
+    ssoLogin,
+    getStatus,
+    getStatusMaybe,
+    setStatus,
+    getDefaultUserLocale,
+    checkAdminGetTeamId,
+    sendSAMLIdPChangedEmail,
   )
 where
 
@@ -86,17 +109,22 @@ import Network.HTTP.Types.Status
 import Network.Wai.Utilities.Error qualified as Wai
 import Polysemy
 import Polysemy.Error
+import SAML2.WebSSO qualified as SAML
+import Web.Cookie (SetCookie)
 import Web.Scim.Filter qualified as Scim
 import Wire.API.Connection
 import Wire.API.Error.Galley
+import Wire.API.Locale
 import Wire.API.MLS.CipherSuite
 import Wire.API.Routes.Internal.Brig
 import Wire.API.Routes.Internal.Brig.Connection
 import Wire.API.Routes.Internal.Galley.TeamFeatureNoConfigMulti qualified as Multi
 import Wire.API.Team.Export
 import Wire.API.Team.Feature
+import Wire.API.Team.Role (Role)
 import Wire.API.Team.Size
 import Wire.API.User
+import Wire.API.User.Auth (CookieLabel)
 import Wire.API.User.Auth.ReAuth
 import Wire.API.User.Client
 import Wire.API.User.Client.Prekey
@@ -170,6 +198,46 @@ data BrigAPIAccess m a where
   UpdateGroup :: UpdateGroupInternalRequest -> BrigAPIAccess m (Either Wai.Error ())
   DeleteGroupInternal :: ManagedBy -> TeamId -> UserGroupId -> BrigAPIAccess m (Either DeleteGroupManagedError ())
   DeleteApp :: TeamId -> UserId -> BrigAPIAccess m ()
+  -- SAML / SCIM user management (migrated from Spar.Sem.BrigAccess)
+  CreateSAML ::
+    SAML.UserRef ->
+    UserId ->
+    TeamId ->
+    Name ->
+    ManagedBy ->
+    Maybe Handle ->
+    Maybe RichInfo ->
+    Maybe Locale ->
+    Role ->
+    BrigAPIAccess m UserId
+  CreateNoSAML ::
+    Text ->
+    EmailAddress ->
+    UserId ->
+    TeamId ->
+    Name ->
+    Maybe Locale ->
+    Role ->
+    BrigAPIAccess m UserId
+  UpdateEmail :: UserId -> EmailAddress -> EmailActivation -> BrigAPIAccess m ()
+  GetAccount :: HavePendingInvitations -> UserId -> BrigAPIAccess m (Maybe User)
+  GetAccountByHandle :: Handle -> BrigAPIAccess m (Maybe User)
+  GetByEmail :: EmailAddress -> BrigAPIAccess m (Maybe User)
+  SetName :: UserId -> Name -> BrigAPIAccess m ()
+  SetHandle :: UserId -> Handle -> BrigAPIAccess m ()
+  SetManagedBy :: UserId -> ManagedBy -> BrigAPIAccess m ()
+  SetSSOId :: UserId -> UserSSOId -> BrigAPIAccess m ()
+  SetRichInfo :: UserId -> RichInfo -> BrigAPIAccess m ()
+  SetLocale :: UserId -> Maybe Locale -> BrigAPIAccess m ()
+  GetRichInfo :: UserId -> BrigAPIAccess m RichInfo
+  CheckHandleAvailable :: Handle -> BrigAPIAccess m Bool
+  SsoLogin :: UserId -> Maybe CookieLabel -> BrigAPIAccess m SetCookie
+  GetStatus :: UserId -> BrigAPIAccess m AccountStatus
+  GetStatusMaybe :: UserId -> BrigAPIAccess m (Maybe AccountStatus)
+  SetStatus :: UserId -> AccountStatus -> BrigAPIAccess m ()
+  GetDefaultUserLocale :: BrigAPIAccess m Locale
+  CheckAdminGetTeamId :: UserId -> BrigAPIAccess m TeamId
+  SendSAMLIdPChangedEmail :: IdpChangedNotification -> BrigAPIAccess m ()
 
 makeSem ''BrigAPIAccess